Can you shared your configuration? I wonder if it is an access problem of the AD user you are using or the ldap base you configured. Have you tried adding: ldap-scope subtree command? ref: https://community.cisco.com/t5/security-documents/asa-idfw-identity-firewall-step-by-step-configuration/ta-p/3127806 Rolando A. Valenzuela.
... View more

Those the sub with auto-registration have all the services needed enabled? What about the DHCP settings, to which pub/sub it is pointing option 150? https://www.cisco.com/c/en/us/td/docs/voice_ip_comm/cucm/admin/10_0_1/ccmcfg/CUCM_BK_C95ABA82_00_admin-guide-100/CUCM_BK_C95ABA82_00_admin-guide-100_chapter_011010.html
... View more

I do not have PT with me right now, but I'll assume you have something like the attached picture. As long you are not reusing any subnets it should work with ip route 0.0.0.0 0.0.0.0 <IP of the other router>
do not forget to have the default gateway configured on the server and client Rolando A. Valenzuela
... View more

As recommendation, if you own a /24 you should get your own AS also and then you should be the one advertising it to your ISP. You will have more control and flexibility that way. Regards. Rolando A. Valenzuela.
... View more

Is there a way to convert the SNMP Traps into Syslog messages? I cannot find documentation about it, but I would like to be sure. Thanks! Rolando A. Valenzuela. Bonus question: What is exactly a rogue client?
... View more

My two cents: It is a design alternative on how simple (or not) you want your BGP to be but please notice that you cannot define the same subnet on all four interfaces since that will create an overlap. The only way to have them all working together will be: Have four different trunks (Layer 2) and the configure the IP on a SVI (Layer 3) like Giuseppe mentioned. Another option is combining them on a Layer 3 PortChannel For either case you only need a total two IPs, therefore one /30 should work. There are some benefits of using four /30: P2P Everything is directly connected Better handling of link failure No STP No load balacing (which during a link failure may force you to account for hop count and delays) No single point of failure by having just one BGP session Regards. Rolando A. Valenzuela.
... View more

No, you need the adapter or you will burn it since the voltage is different. The adapter if it supports 48v, then it can go the your PDU. PDU --> Power adapter --> Router. Regards. Rolando A. Valenzuela
... View more

Careful with that ACL, what other things uses internet on that firewall (and its subnets) DNS? NTP? What about VPN clients, will they use the internet the firewall has? If all the boxed are checked, then yes the ACL you have should work, you just need to add it to the correct interface using the command access-group OUTSIDE-IN in interface <name_of_the_interface> Hope this helps. Rolando A. Valenzuela.
... View more